Every year, in response to new technologies and new laws in different countries and regions, there are changes to the fundamental knowledge, skills, techniques, and tools required by all IT security professionals. In step with the lightning-quick, increasingly fast pace of change in the technology field, the Information Security Management Handbook, updated yearly, has become the standard on which all IT security programs and certifications are based. It reflects new updates to the Common Body of Knowledge (CBK) that IT security professionals all over the globe need to know. Captures the crucial elements of the CBK Exploring the ten domains of the CBK, the book explores access control, telecommunications and network security, information security and risk management, application security, and cryptography. In addition, the expert contributors address security architecture and design, operations security, business continuity planning and disaster recovery planning. The book also covers legal regulations, compliance, investigation, and physical security. In this anthology of treatises dealing with the management and technical facets of information security, the contributors examine varied topics such as anywhere computing, virtualization, podslurping, quantum computing, mashups, blue snarfing, mobile device theft, social computing, voting machine insecurity, and format string vulnerabilities. Also available on CD-ROM Safeguarding information continues to be a crucial concern of all IT professionals. As new risks threaten the security of our systems, it is imperative that those charged with protecting that information continually update their armor of knowledge to guard against tomorrow’s hackers and software vulnerabilities. This comprehensive Handbook, also available in fully searchable CD-ROM format keeps IT professionals abreast of new developments on the security horizon and reinforces timeless concepts, providing them with the best information, guidance, and counsel they can obtain. |
Average Customer Review:
 ( 1 customer reviews )
Write an online review and share your thoughts with other customers.
Most Helpful Customer Reviews
0 of 2 found the following review helpful:
Major disappointment! TerribleJan 26, 2010
By A. grado
"Angel_Wings"
I checked the mail every day for my copy to arrive. I got the CD version, but I didn't want to post the review there as I suspect more would purchase the book. I want to get the word out on this book! I was lured in by the large number of 4 and 5 star ratings this book received. Well, the book came today. Wow. I am almost in tears! Literally. I was looking forward to a sound, intellectual, smart, compilation of legitimate reference sources for both the CISSP and my job. I was deceived. I have read "All in One CISSP", "Exam Cram CISSP", LabSim CISSP, I have even looked at the official guide from ISC(2), which it truly is an intellectual reference source. This book is a waste of my time. I have ejected the CD, packed it back up, and am how hoping that I'll be able to get my money back for such a poor investment!
This disappointment has outdated information, white papers written like they were completed for a high school thesis, and advice that would probably get someone fired if followed in the real world. I read two articles. One on Phising and one on Self Audits. I thought both would be a good chance to get into some details on information security. However, the Phishing whitepaper was of the depth of a AM news/entertainment show on the dangers of opening unknown e-mails. The Self Auditing Hacking, which had alot of opportunities to be technical focused on social engineering and getting physical access to a computer. Even a rookie Info Sec person (not an InfoSec Manager) knows those are the oldest tricks in the book (pun not originally intended, but after reviewing, it seems appropriate). We don't need a bloated book, over $50 or even $150 to tell us common knowledge.
|
based on 1 reviews
